We are pleased to announce the SystemUser flow now has a RESTful endpoint to exchange a SystemUser token for a SystemUser SOTicket credential.
The prototype to get an SOTicket requires the same parameters as the SOAP endpoint:
- A signed representation of your system user token. See how to sign a system token.
- An application secret, also referred to as client_secret.
- A context identifier, which is the customer tenant ID (Cust12345).
- The desired token type, JWT or SAML. We recommend using only JWT as SAML support will eventually fade.
Remember to always validate the response to ensure it hasn't been compromised enroute to your application.
Hope this help make it easier to adopt the system user flow for non-SOAP/WCF-friendly applications!